Most Recently Held Positions:Data Loss Protection Management: Independent Health: Lead Symantec DLP expert on improving client's security posture through a custom designed DLP implementation; timely upgrades; custom policies; troubleshooting issue with recommendations and daily management to keep pace with new business requirements. Russell Investments: Assisted and Backup with Symantec upgrade. Wolters Kluwer: Lead DLP on Forcepoint/Websense DLPIn-Depth Microsoft Office Excel experience in Report Creation & Data Analysis to identify issues for remediation, track progress, provide updates to stake holders and responsible teams.Vulnerability Management: Slashed High and Medium level vulnerabilities on government systems by a two-prong effort of increasing the scope of devices and system targeted (by 200% +) per vulnerability scan and increasing the depth of the vulnerability scan on those systems by implementing authenticated/credentials on permitted systems. Tracked the remediation of High & Medium level vulnerabilities to their resolution. Results: Within 6 months, reduced vulnerabilities by approximately 95%.Inputs: FISMA-NIST Compliance Standards and McAfee Vulnerability Assessment scanning tools

● Maintain an active Federal High Risk (Level 6C) security clearance since 2010● Perform daily vulnerability assessments with the latest exploitation signatures for three corporate and two federal clients using McAfee Vulnerability Manager, Critical Watch Fusion VM and Qualys VM● Design and implement vulnerability assessment programs for new accounts by determining scanning requirements across diverse network environments, by deploying scanners to Windows and Unix-like servers, and by maintaining scanning appliances with the latest patches● Utilize available resources to increase both the scope and targets to scan, growing the scanning program from 650 Windows and UNIX-like servers to over 9000+ targets including Cisco IOS routers, switches, firewalls, printers, VoIP, DRAC, web applications, and storage, etc.● Implement and maintain automated monthly customized scan reports, first found and last found data, in order to track remediation progress and aging vulnerabilities● Provide monthly CyberScope XML reports for upload into the Department of Homeland Security (DHS) database● Increase and maintain credentialed scan capability that were limited to servers only but expanded to include CISCO IOS devices and web applications● Filter vulnerability scans which reduce false positives, enhance the economical use of resources, and augment the reputation of the vulnerability assessment program, thereby allowing system support personnel to focus on actionable critical and high vulnerabilities● Engage various outside vendors, internal network engineers, and system support personnel to resolve highly technical issues and vulnerability assessment operations● Support ISO 27000 certification by delivering remediable vulnerability reports from scan data to upper management

● Resolved security alerts within the Security Operations Center (SOC) using RSA enVision Security Information and Event Management (SIEM) and McAfee NSM● Investigated security incidents for resolution by performing threat analysis and determining mitigation protocols by using vendor information, data from security appliances, and online research for multiple corporate and government clients● Performed deep dive analysis of sensor logs including firewall, DNS, DHCP, HIPS, NIPS, HIDS, NIDS, proxy, NIC, and Wireshark packet data using enterprise security appliances including BlueCoat Proxy, BlueCoat Reporter, McAfee ePO, McAfee NSM, and RSA EnVision● Documented, updated, and tracked alerts and incidents using a custom web application which satisfied audit requirements and fulfilled client SLAs● Reset client passwords and troubleshot login issues with Cisco Secure ACS (TACACS)